[ISN] Ransomware going strong, despite takedown of Gameover Zeus

http://arstechnica.com/security/2014/09/ransomware-going-strong-despite-takedown-of-gameover-zeus/ By Robert Lemos Ars Technica Sept 7 2014 In late May, an international law enforcement effort disrupted the Gameover Zeus (GoZ) botnet, a network of compromised computers used for banking fraud. The operation also hobbled a secondary, but equally important cyber-criminal operation: the Cryptolocker ransomware campaign, which used a program distributed by the GoZ botnet to encrypt victims’ sensitive files, holding them hostage until the victim paid a fee, typically hundreds of dollars. The crackdown, and the subsequent discovery by security firms of the digital keys needed to decrypt affected data, effectively eliminated the threat from Cryptolocker. Yet, ransomware is not dead, two recent analyses have found. Within a week of the takedown of Gameover Zeus and Cryptolocker, a surge of spam with links to a Cryptolocker copycat, known as Cryptowall, resulted in a jump in ransomware infections, states a report released last week by security-services firm Dell Secureworks. Cryptowall first appeared in November 2013, and spread slowly, but the group behind the program were ready to take advantage of the vacuum left by the downfall of its predecessor. Being prepared paid off: In six months, the Cryptowall group infected nearly 625,000 systems, and even though only 0.27% of victims paid, the group still made $1.1 million, according to data from a command-and-control server discovered by Dell Secureworks. Ransomware is here to stay, the company concluded. […]




Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] Smartphone app tracked govt jets

http://the-japan-news.com/news/article/0001540669 The Yomiuri Shimbun September 03, 2014 A flight-tracking app known as “Flightradar 24” has been revealing flight data of government aircraft online for some time, The Yomiuri Shimbun has learned. Government aircraft, also known as Japanese Air Force One, are used to transport the prime minister and senior government officials for overseas visits. As part of counterterrorism measures, their flight routes are not meant to be disclosed, yet the app had been revealing such flight data. The Defense Ministry, which operates government aircraft, requested the Swedish app provider stop displaying the sensitive information after the fact was pointed out by The Yomiuri Shimbun in early August. A company official replied that necessary measures were taken not to reveal the government aircraft. According to the app provider, its “Flightradar 24” live air traffic tracker site became available in 2006, with its smartphone version priced at ¥300. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] San Diego Hotel Group Suffers Payment Card Breach

http://www.infosecnews.org/san-diego-hotel-group-suffers-payment-card-breach/ By William Knowles @c4i Senior Editor InfoSec News September 5, 2014 San Diego based Bartell Hotels has released a statement detailing a data security incident which occurred between February 16, 2014 and May 13, 2014 that may involve certain credit card data, including credit card numbers, and other personally identifiable information. The payment card systems at the following five locations were compromised by a third party attacker. Best Western Plus Island Palms Hotel & Marina Humphreys Half Moon Inn & Suites The Dana on Mission Bay Days Hotel–Hotel Circle Pacific Terrace Hotel Law enforcement and the credit card brands have been notified of this incident. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] Meet Zelda, the unlikely ‘Dear Abby’ of NSA

http://www.bostonglobe.com/news/nation/2014/09/06/rare-peek-into-super-secret-nsa-through-its-very-own-advice-columnist/pNheGTksn0rqJHU8XqltwI/story.html By Bryan Bender GLOBE STAFF SEPTEMBER 07, 2014 WASHINGTON — The anonymous employee wrote to complain that a high-ranking official “is frequently MIA,” or missing in action. “We never know if he is coming or not,” the underling wrote. “He frequently leaves work in the middle of the day to run routine errands. I overheard him tell a co-worker, ‘This place is last on my list of priorities.’ ” “This place” is none other than the super-secret National Security Agency. The writer, “Headless in Headquarters,” was airing one of scores of grievances to “Zelda,” the often cheeky and opinionated advice columnist in the agency’s employee newsletter — a popular fixture inside the spy agency whose role is revealed in documents obtained by The Boston Globe. “Ask Zelda,” in its quirky, sarcastic, and at times blunt and sobering style, reveals a host of workplace ills at the agency that has been under fire for monitoring huge amounts of private communications since a former contractor, Edward Snowden, last year leaked thousands of documents about its domestic intelligence-gathering practices. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail